IPsec: Close on-demand tunnels after 15 min of inactivity

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2026-04-21 16:32:59 +02:00 · 2017-02-15 11:22:27 +00:00
parent dcb406cc67
commit 1ee1666ee4
1 changed files with 6 additions and 0 deletions
--- a/html/cgi-bin/vpnmain.cgi
+++ b/html/cgi-bin/vpnmain.cgi
@@ -413,6 +413,12 @@ sub writeipsecfiles {
 			print CONF "\trightsourceip=$lvpnsettings{'RW_NET'}\n";
 		} else {
 			print CONF "\tauto=$start_action\n";
+
+			# If in on-demand mode, we terminate the tunnel
+			# after 15 min of no traffic
+			if ($start_action eq 'route') {
+				print CONF "\tinactivity=900\n";
+			}
 		}

 		# Fragmentation